Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1569

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2006-1569
Last Modified 07 Mar 2011 09:33:19
Published 31 Mar 2006 07:04:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-1569

Summary

Multiple SQL injection vulnerabilities in RedCMS 0.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameters to (a) login.php or (b) register.php; or (3) u parameter to (c) profile.php.

Vulnerable Systems

Application

  • Redcms 0.1


References

VUPEN - ADV-2006-1186

SECUNIA - 19475

MISC - http://evuln.com/vulns/115/summary.html

XF - redcms-multiple-sql-injection(25578)

BID - 17336

BUGTRAQ - 20060413 [eVuln] RedCMS Multiple XSS and SQL Injection Vulnerabilities

OSVDB - 24299

OSVDB - 24298

OSVDB - 24297


Last Updated: 27 May 2016 10:42:06